The government of India is preparing to issue a formal advisory warning to users about potential privacy and cybersecurity risks associated with the Chinese AI tool DeepSeek.
Speaking to the Economic Times, Senior officials revealed that the move follows a detailed investigation by CERT-In, India’s cybersecurity agency, into how DeepSeek might be accessing sensitive user data through its AI chatbot.
According to the report, authorities are concerned that DeepSeek collects a wide range of data, including user prompts, device information, app interactions, and even keystrokes. The findings have raised alarm within the government, prompting swift action to safeguard individual privacy and national security interests.
Why DeepSeek has sparked concern
CERT-In’s investigation found that DeepSeek tracks user behavior in ways that go beyond standard data collection practices. The app can monitor prompts submitted to the chatbot, device performance, and app usage, and even track whether users have stopped using competing apps like ChatGPT or Google’s Gemini.
Officials said DeepSeek’s lack of accountability regarding where and how sensitive data is stored is the biggest concern. India is particularly wary of allowing China access to personal data due to risks of misuse, such as surveillance or cyber espionage.
The IT Ministry’s advisory follows the Ministry of Finance directive, which recently prohibited government officers from using AI tools like ChatGPT and DeepSeek. India’s concerns are not isolated; several countries, including Australia, Italy, and South Korea, have banned DeepSeek on official devices, citing privacy and security risks.
Growing global scrutiny of DeepSeek
Since its release in January, DeepSeek has faced increasing scrutiny globally. Although the tool gained initial acclaim for its efficient open-source AI model, governments have raised red flags over its data practices.
Australia banned DeepSeek over privacy and malware risks, while Taiwan labeled it a security threat. South Korean ministries, including police agencies, flagged it as a national security risk after the Chinese AI startup failed to provide transparency on how it handles user data. Similarly, Italy blocked DeepSeek from processing the data of Italian users and launched an investigation into its R1 model.
Cybersecurity experts warn that apps like DeepSeek, which offer free services, often turn users into products by harvesting their data. Unlike Western tech companies, DeepSeek operates without accountability under Chinese law. He noted that such data could be accessed by Chinese law enforcement or used to spread misinformation and manipulate public discourse.
Next steps for India
The Indian IT Ministry has reportedly finalized the technical and operational requirements for hosting DeepSeek within India. However, whether these plans will be reconsidered in light of the new concerns is unclear.
Officials expect the advisory to be issued soon, cautioning citizens and organizations against using DeepSeek on their devices. As data security becomes an increasingly critical issue in global tech policy, India’s stance reflects broader efforts to protect privacy and prevent misuse of sensitive information by foreign entities.
